Transcript
A wafrn woot (post) by @tinker@infosec.exchange saying “Microsoft Authenticator needs me to validate with Authenticator in order to log in with Authenticator to use it to authenticate another app with Authenticator. Here is the app telling me to open itself to validate itself with itself. #infosec #iHateComputers” It has a screenshot showing the microsoft authenticator app.
Which?
Microsoft accounts support the open TOTP standard for rolling 2FA codes, so there’s tons of apps that support storing TOTP codes
Issue is that my work has some kind of bullshit set up which doesn’t make it purely totp
There’s so many tunables for M365 account requirements (and thats not even touching on third party security integrations like Duo) I’m not shocked
I am using an app called QR & Barcode Scanner.